This paper summarises ongoing research and recent results on the development of flexible access control infrastructure
for complex resource provisioning in Grid-based collaborative applications and on-demand network services provisioning. The
paper analyses the general access control model for Grid-based applications and discusses what mechanisms can be used for
expressing and handling dynamic domain or process/workflow-related security context. Suggestions are given on what specific
functionality should be added to the Grid-oriented authorization frameworks to handle such dynamic security context. As an
example, the paper explains how such functionality can be achieved in the GAAA Authorization framework (GAAA-AuthZ) and GAAA
toolkit. Additionally, the paper describes AuthZ ticket format for extended AuthZ session management. The paper is based on
experiences gained from major Grid-based and Grid-oriented projects such as EGEE, Phosphorus, NextGRID, and GigaPort Research
on Network.

Disclaimer/Complaints regulations

If you believe that digital publication of certain material infringes any of your rights or (privacy) interests, please let
the Library know, stating your reasons. In case of a legitimate complaint, the Library will make the material inaccessible
and/or remove it from the website. Please Ask the Library, or send a letter to: Library of the University of Amsterdam, Secretariat, Singel 425, 1012 WP Amsterdam, The Netherlands.
You will be contacted as soon as possible.